IN THE CLAIMS 



1 . (previously presented) A method for securely creating an endorsement certificate for a 
device in an insecure environment, said method comprising: 

generating for a valid device an endorsement key pair that includes a private key and a 
public key, wherein said private key is not public readable; 

creating a non-public, secure value that is provided to both a plurality of valid devices 
and a credential server, wherein the value is a first value that is provided to a first set of said 
plurality of valid devices and a second set of said plurality of valid devices are provided a 
second value, based on a pre-defined method for determining when to change said first value to 
said second value fi-om among: a passage of a pre-set amount of device manufacturing time 
and a preset number of manufactured devices fi-om among the plurality of valid devices; 

verifying by utilizing said non-public, secure value that an endorsement key of said valid 
device is a valid endorsement key of said endorsement key pair that was generated during 
manufactured of said valid device, wherein a function of a first copy of said non-public, secure 
value within said credential server matches a similar function of a second copy of said non- 
public, secure value associated with the endorsement key received at the credential server; and 

inserting an endorsement certificate into said device to indicate that said device is an 
approved device by an original equipment manufacturer (OEM) of the device. 

2. (previously presented) The method of Claim 1, wherein said non-public, secure value is 
a secret number and said method further comprises forwarding a first copy of said secret number 
via a secure communication medium to said credential server. 

3. (previously presented) The method of Claim 2, further comprising: 

hashing a second copy of said secret number with a public key from said endorsement 

key pair; 

combining a first hash result from said hashing step with the public key to create the 
endorsement key (EK); and 

forwarding said EK to said credential server to initiate a credential process. 
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4. (previously presented) The method of Claim 3, said verifying step further comprising: 
receiving said EK from said device at the credential server; 

hashing the public key within the received EK with the first copy of said secret number 

received 

during said forwarding step to provide a second hashed value; 

comparing the first hashed value from within the EK with the second hash value; and 
confirming said EK is from a valid device when said comparing step results in a match. 

5. (original) The method of Claim 1, wherein following said verifying step said 
method further comprises: 

initially storing the credential in a database of said credential server; 
monitoring for a request from a customer to provide said certificate to said device; and 
following a receipt of said customer request, transmitting said certificate to said device 
to be inserted within the device. 

6. (original) The method of Claim 1, wherein said endorsement certificate is once- 
writeable public-readable and is utilized for signing said public key during communication 
from and to said device. 

7. (original) The method of Claim 1, wherein said value is injected into said device, and 
said value is a single-use parameter, said method fiirther comprising immediately destroying 
said value within said device following a creation of said EK. 

8. (original) The method of Claim 1, wherein said credential server is remotely located 
from a vendor manufacturing said device and said method comprises communicating said 
value from said device to said credential server via a secure communication medium. 

9. (canceled) 

10. (original) The method of Claim 1, wherein said device is a trusted platform module 
(TPM). 



RPS920030206US1 
Page 3 of 7 



11. (original) A TPM device manufactured and authenticated according to the steps of 
Claim 1 . 

12-16. (canceled) 

17. (previously presented) A system for securely creating an endorsement certificate 
for a device in an insecure environment, said system comprising: 

means for generating for a valid device an endorsement key pair that includes a private 
key and a public key, wherein said private key is not public readable; 

means for creating a non-public, secure value that is provided to both a plurality of valid 
devices and a credential server, wherein the value is a first value that is provided to a first set of 
said plurality of valid devices and a second set of said plurality of valid devices are provided a 
second value, based on a pre-defined system for determining when to change said first value to 
said second value fi-om among: expiration of a pre-set amount of device manufacturing time; 
and manufacture of a preset number of devices from among the plurality of valid devices; 

means for verifying by utilizing said non-public, secure value that an endorsement key of 
said valid device is a valid endorsement key of said endorsement key pair that was generated 
during manufacture of said valid device, wherein a function of a first copy of said non-public, 
secure value within said credential server matches a similar fiinction of a second copy of said 
non-public, secure value associated with the endorsement key received at the credential server; 
and 

means for inserting an endorsement certificate into said device to indicate that said device 
is an approved device by an original equipment manufacturer (OEM)of the device wherein said 
inserting is completed only when said verifying step is confirmed. 

18. (previously presented) The system of Claim 17, wherein said non-public, secure value is 
a secret number and said system further comprises means for forwarding a first copy of said 
secret number via a secure communication medium to said credential server. 

19. (previously presented) The system of Claim 18, further comprising: 

means for hashing a second copy of said secret number with a pubhc key fi-om said 
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endorsement key pair; 

means for combining a first hash result from said hashing step with the public key to 

create the endorsement key (EK); and 

means for forwarding said EK to said credential server to initiate a credential process. 

20. (previously presented) The system of Claim 19, said verifying means further 
comprising: 

means for receiving said EK from said device at the credential server; 

means for hashing the public key within the received EK with the first copy of said secret 
number received during said forwarding step to provide a second hashed value; 

means for comparing the first hashed value from within the EK with the second hash 
value; and 

means for confirming said EK is from a valid device when said comparing step results in 
a match. 

21. (original) The system of Claim 17, wherein following said verifying said system 
further comprises: 

means for initially storing the credential in a database of said credential server; 
means for monitoring for a request from a customer to provide said certificate to said 
device; and 

means for following a receipt of said customer request, transmitting said certificate to 
said device to be inserted within the device. 

22. (original) The system of Claim 17, wherein said endorsement certificate is once- 
writeable public-readable and is utilized for signing said public key during communication 
from and to said device. 

23. (original) The system of Claim 17, wherein said value is injecting into said device, and 
said value is a single-use parameter, said system further comprising means for immediately 
destroying said value within said device following a creation of said EK. 
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24. (original) The system of Claim 17, wherein said credential server is remotely located 
from a vendor manufacturing said device and said system comprises means for communicating 
said value from said device to said credential server via a secure communication medium. 

25. (canceled) 
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